398 matches found
EUVD-2025-23074
Malicious code in bioql PyPI...
EUVD-2025-14503
Malicious code in bioql PyPI...
EUVD-2021-3582
Malicious code in bioql PyPI...
EUVD-2024-25030
Malicious code in bioql PyPI...
EUVD-2024-52590
Malicious code in bioql PyPI...
On Darwin, user's trust preferences for root certificates were not honored. If the user had a root certificate loaded in their Keychain that was explicitly not trusted, a Go program would still verify a connection using that root certificate.
...
Exploit for Use After Free in Apple Ipados
Glass Cage: Zero-Click PNG Exploit Chain for iOS 18.2.1 CVE...
CVE-2025-43251
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items...
Unspecified Vulnerability in Apple macOS (CNVD-2025-17892)
Apple macOS Sequoia is an operating system from the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.6, which can be exploited by a local attacker to potentially access the Keychain project...
CVE-2025-43251
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items...
CVE-2025-43251
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items...
Apple macOS Sequoia 安全漏洞
Apple macOS Sequoia is an operating system from the American company Apple Apple. A security vulnerability exists in Apple macOS Sequoia versions prior to 15.6, which can be exploited by a local attacker to potentially access the Keychain project...
CVE-2025-43251
CVE-2025-43251 affects macOS Sequoia 15.6 (fixed in 15.6). The issue is an authorization flaw in state management that could let a local attacker access Keychain items (CONFIDENTIALITY impact) with LOW privileges and no user interaction. CVSS: LOCAL attack vector, LOW attack complexity, PRIVilege...
CVE-2025-43251
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items...
CVE-2025-43251
An authorization issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.6. A local attacker may gain access to Keychain items...
PT-2025-31326 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.6 Description: An authorization issue was addressed with improved state management. A local attacker may gain access to Keychain items. Recommendations: Update to macOS version 15.6...
📄 Glass Cage Zero-Click iMessage Exploit Details
Glass Cage, a vulnerability chain discovered on iOS 18.2, enables an attacker to compromise a device silently by sending a single malicious PNG image via iMessage. The exploit bypasses multiple layers of Apple's defenses, including BlastDoor, WebKit sandboxing, and CoreMedia memory protections...
CVE-2024-27837
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. A local attacker may gain access to Keychain items...
CVE-2024-44162
This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 16. A malicious application may gain access to a user's Keychain items...
CVE-2024-54490
This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Sequoia 15.2. A local attacker may gain access to user's Keychain items...